CVE-2026-43387

Summary

In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8723bs: properly validate the data in rtw_get_ie_ex()

Just like in commit 154828bf9559 ("staging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser"), we don't trust the data in the frame so we should check the length better before acting on it

Affected Software

VendorProductVersion RangeStatus
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < ac38856092b4c994f94343251b30520bdeb7f475affected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 35969c3a208a07cb8642301df5869c34e2db7071affected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 8097a48c606a9306281ea7bd73bf2afc97553733affected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 740bca8bbdb707c0e4bb11e3316deb2f04fc7ce1affected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 821f7d759fb2de33c5e5b0c4981181c4d0c3e9b1affected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 6d62fa548387e159a21ea95132c09bfc96d336edaffected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 9a4cd4c37593cc8b8d28f9a6732b490a8032006aaffected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < f0109b9d3e1e455429279d602f6276e34689750aaffected
LinuxLinux4.12affected
LinuxLinux0 < 4.12unaffected
LinuxLinux5.10.253 <= 5.10.*unaffected
LinuxLinux5.15.203 <= 5.15.*unaffected
LinuxLinux6.1.167 <= 6.1.*unaffected
LinuxLinux6.6.130 <= 6.6.*unaffected
LinuxLinux6.12.78 <= 6.12.*unaffected
LinuxLinux6.18.19 <= 6.18.*unaffected
LinuxLinux6.19.9 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References